Close
  • Latest News
  • Artificial Intelligence
  • Video
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Logo
  • Latest News
  • Artificial Intelligence
  • Video
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Applications
    • Applications
    • Cloud
    • Cybersecurity
    • Innovation
    • IT Management

    IT Science Case Study: Finding Reliable Container Security Across Clouds

    Written by

    Chris Preimesberger
    Published February 23, 2019
    Share
    Facebook
    Twitter
    Linkedin

      eWEEK content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More.

      Here is the latest article in an eWEEK feature series called IT Science, in which we look at what actually happens at the intersection of new-gen IT and legacy systems.

      Unless it’s brand new and right off various assembly lines, servers, storage and networking inside every IT system can be considered “legacy.” This is because the iteration of both hardware and software products is speeding up all the time. It’s not unusual for an app-maker, for example, to update and/or patch for security purposes an application a few times a month, or even a week. Some apps are updated daily! Hardware moves a little slower, but manufacturing cycles are also speeding up.

      These articles describe new-gen industry solutions. The idea is to look at real-world examples of how new-gen IT products and services are making a difference in production each day. Most of them are success stories, but there will also be others about projects that blew up. We’ll have IT integrators, system consultants, analysts and other experts helping us with these as needed.

      Today’s Topic:  Finding Reliable Security Across Google, AWS Clouds

      Name the problem to be solved: Mux, a video production SaaS and analytics company, needed to provide security and compliance for its container and Kubernetes-based environments across Google and Amazon clouds. The company runs its systems in geos around the world, and its customers include global media companies with stringent compliance requirements. Mux needed to provide that compliance data and protect its infrastructure against attacks and accidental exposure from customer files. As with many software companies today, Mux uses a lot of open source software in its offerings, so it needed to understand the risk profile of that software it can’t control, and it needed runtime detection to monitor the video files it ingests from its customers, to find and stop malicious activity.

      Describe the strategy that went into finding the solution: Mux IT staff knew they needed an “out-of-the-box” solution that didn’t require extensive staff resources or infrastructure changes to run. The company started doing research online, looking for container security companies, and at trade shows. The focus was on finding a solution that addressed security across the full container life cycle with a special focus on Kubernetes security. Mux found the StackRox Container Security Platform at the DockerCon trade show and was piloting the software within weeks.

      List the key components in the solution: Mux had a few key requirements for their Kubernetes security solution. The company needed a container security platform that supported:

      • Full security across build, deploy, and runtime phases of the container life cycle
      • Protection against known Kubernetes attack vectors
      • Automatic identification and blocking of malicious activity, based on behavior and not just whitelists
      • Full portability across cloud and on-prem deployments

      Describe how the deployment went, perhaps how long it took, and if it came off as planned:  Mux deployed the StackRox software in a couple hours, tying it into Mux’s CI/CD pipeline, developer notification tools, and Kubernetes deployments. The company ran the software on its test systems for a few weeks, experimenting with various known attack vectors, misconfigurations, and privilege settings. Then the company incorporated its production systems under the StackRox security framework. About an hour later, during an all hands where the head of infrastructure was showing off the newly deployed StackRox security software, the StackRox risk profile dashboard flashed a critical alert showing a container break out. As he clicked through on the dashboard to see what was happening, an engineer sheepishly raised his hand that he’d been behind the problem, breaking protocol and short circuiting the typical process. Immediately, the company saw the value of the StackRox software.

      Describe the result, new efficiencies gained, and what was learned from the project:  In addition to flagging that real-time container violation, the StackRox software has helped Mux automate the process of ensuring builds and deployments adhere to Mux best practices. The software automatically stack-ranks the company’s riskiest deployments, and it provides both the violation details as well as remediation steps needed. Because the StackRox software links these violations to the dev teams responsible for the deployments, Mux has dramatically increased efficiencies of having build and deploy problems resolved. Mux calls this process “automatic triage,” where StackRox instead of people figure out the biggest issues Mux has to resolve.

      Describe ROI, carbon footprint savings, and staff time savings, if any:  Mux has gained tremendous staff time savings in the automatic triage of the StackRox risk profile dashboard. What used to take hour and days, in an on-going fashion, now happens immediately and continuously, constantly updating the dashboard with any critical issues and automatically flagging the involved development team. The company estimates they would have needed to hire a full-time engineer just to dedicate to hardening the container and Kubernetes environments and tracking down runtime problems – StackRox saves that headcount.

      Other references: You can read how Mux thinks about this deployment here; you can watch a video of Mux’s head of infrastructure here. Additional details on StackRox can be found here.

      If you have a suggestion for an eWEEK IT Science article, email [email protected].

      Chris Preimesberger
      Chris Preimesberger
      https://www.eweek.com/author/cpreimesberger/
      Chris J. Preimesberger is Editor Emeritus of eWEEK. In his 16 years and more than 5,000 articles at eWEEK, he distinguished himself in reporting and analysis of the business use of new-gen IT in a variety of sectors, including cloud computing, data center systems, storage, edge systems, security and others. In February 2017 and September 2018, Chris was named among the 250 most influential business journalists in the world (https://richtopia.com/inspirational-people/top-250-business-journalists/) by Richtopia, a UK research firm that used analytics to compile the ranking. He has won several national and regional awards for his work, including a 2011 Folio Award for a profile (https://www.eweek.com/cloud/marc-benioff-trend-seer-and-business-socialist/) of Salesforce founder/CEO Marc Benioff--the only time he has entered the competition. Previously, Chris was a founding editor of both IT Manager's Journal and DevX.com and was managing editor of Software Development magazine. He has been a stringer for the Associated Press since 1983 and resides in Silicon Valley.
      Linkedin Twitter

      Get the Free Newsletter!

      Subscribe to Daily Tech Insider for top news, trends & analysis

      Get the Free Newsletter!

      Subscribe to Daily Tech Insider for top news, trends & analysis

      MOST POPULAR ARTICLES

      Artificial Intelligence

      9 Best AI 3D Generators You Need...

      Sam Rinko - June 25, 2024 0
      AI 3D Generators are powerful tools for many different industries. Discover the best AI 3D Generators, and learn which is best for your specific use case.
      Read more
      Cloud

      RingCentral Expands Its Collaboration Platform

      Zeus Kerravala - November 22, 2023 0
      RingCentral adds AI-enabled contact center and hybrid event products to its suite of collaboration services.
      Read more
      Artificial Intelligence

      8 Best AI Data Analytics Software &...

      Aminu Abdullahi - January 18, 2024 0
      Learn the top AI data analytics software to use. Compare AI data analytics solutions & features to make the best choice for your business.
      Read more
      Latest News

      Zeus Kerravala on Networking: Multicloud, 5G, and...

      James Maguire - December 16, 2022 0
      I spoke with Zeus Kerravala, industry analyst at ZK Research, about the rapid changes in enterprise networking, as tech advances and digital transformation prompt...
      Read more
      Video

      Datadog President Amit Agarwal on Trends in...

      James Maguire - November 11, 2022 0
      I spoke with Amit Agarwal, President of Datadog, about infrastructure observability, from current trends to key challenges to the future of this rapidly growing...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2024 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×